WHAT IS CLAIMED IS? 





1? 



A method of providing distributed web server authentication of a valid user 



requesting access to a web server, said method comprising: 

receiving a request to connect the valid user to a web server; 
creating a user password cookie using a shared secret key; and 
transmitting the user password cookie in response to the request to connect. 

2. The methochpf claim 1, wherein creating a user password cookie using a shared secret 
key, comprises: \ 

reading a user credential cookie; 
requesting a user identification (ID) and password; 
receiving the user ID and password; and 
validating the valid user's identity. 

3. The method of claim 2, wherein validating the valid user's identity, comprises: 
authenticating the user ID and password with the user credential cookie using a local 

authenticating mechanism. \ 

4. The method of claim 3, wherein the looal authenticating mechanism is an operating 



secret key, further comprises: \ 

combining at least the user ID and password with a time^tamp; and 

encrypting the combined at least user ID, password and time stamp using the shared secret 

key. \ 

6. The method of claim 1, wherein creating a user password cookie using a shared secret 
key, comprises: \ 



system. 



5. 



The method of claim 2, wherein creating a usW password cookie using the shared 
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1 7. Tnfe method of claim 6, wherein updating the user password cookie using the shared 

2 secret key, comprise$: 

3 combining at leiast a user identification (ID) and password with a time stamp; and 

4 encrypting the combined at least user ID, password and time stamp using the shared secret 

5 key. \ 

1 8. The method of claim 1, wherein the web server is part of a common authentication 

2 ring having a shared secret key. \ 

^1 9. The method of claim 1, further comprising: 

y 32 authenticating a second valid user\equesting access to the web server. 

J^l 10. The method of claim 9, whereinSauthenticating a second valid user requesting access 

P2 to the web server, comprises: \ 

s 3 receiving a request to connect the second valid user to the web server; and 

j*~4 creating a second user password cookie using\he shared secret key; and 

&J5 transmitting the second user password cookie inVesponse to the request to connect the second 

yjj6 valid user. \ 

Va \ 

yj \ 

1 11. The method of claim 1 , further comprising: \ 

2 authenticating the valid user at a second web server, wherein the web server and the second 

3 web server are part of a common authentication ring. \ 

1 12. The method of claim 1 1, wherein authenticating the Malid user at a second web server, 

2 comprises: \ 

3 receiving a request to connect the valid user to the second web server; 
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4 \updating the user pl^vord cookie using the shared secret key; and 

5 transmitting the user password cookie in response to the request to connect the valid user to 

6 the second web server. 

1 13. \A computer-readable medium having stored therein a computer program for 

2 providing distributed web server authentication of a valid user requesting access to a web server, said 

3 program comprising: 

4 receiving a request to connect a valid user to a web server; 

5 creating a user password cookie using a shared secret key; and 

6 transmitting the user password cookie in response to the request to connect. 

1 14. The computer-readable medium of claim 13, wherein creating a user password cookie 

2 using a shared secret key, comprises: 
*f3 reading a user credential co(akie; 

4*4 requesting a user identification (ID) and password; 

lli^S receiving the user ID and password; and 

~f6 validating the valid user's identity! 

i? \ 

^ 1 15. The computer-readable medium of claim 14, wherein validating the valid user's 

f-*2 identity, comprises: \ 

ti 3 authenticating the user ID and password with the user credential cookie using a local 

|J4 authenticating mechanism. \ 

1 16. The computer-readable medium of claim 15, wherein the local authenticating 

2 mechanism is an operating system. \ 

1 17. The computer-readable medium of claim 14\ wherein creating a user password cookie 

2 using the shared secret key, further comprises: \ 

3 combining at least the user ID and password with a time stamp; and 
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encrypting the comtlned at least user ID, password and time stamp using the shared secret 



key. 



1 18. Th& computer-readable medium of claim 13, wherein creating a user password cookie 

2 using a shared secrerUcey, comprises: 

3 obtaining the user password cookie; 

4 verifying that theVser password cookie is valid; and 

5 updating the password cookie using the shared secret key. 



1 

2 



19. The computer-readable medium of claim 13, further comprising: 
authenticating a second valid user requesting access to the web server. 
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20. The computer-readableVnedium of claim 19, wherein authenticating a second valid 
user requesting access to the web server\comprises: 

receiving a request to connect the s<scond valid user to the web server; and 
creating a second user password cookie using the shared secret key; and 
transmitting the second user password cqpkie in response to the request to connect the second 
valid user. 

21. The computer-readable medium of claim 13, further comprising: 
authenticating the valid user at a second web server, wherein the web server and the second 

web server are part of a common authentication ring. 

22. The computer-readable medium of claim 21, v^herein authenticating the valid user at 
a second web server, comprises: 

receiving a request to connect the valid user to the Seconal web server; 
updating the user password cookie using the shared secret>key; and 

transmitting the user password cookie in response to the request to connect the valid user to 
the second web server. 
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;e3£adable medium encoded with a data structi 



13. A computeH£adable medium encoded with a data structure representing a password 
cookie, said data structure comprising: 
a usW identification (ID); 
a password; and 

a time stamp associated with said user ID and password, wherein said password cookie is 
encrypted using a shared secret key. 

24. An apparatus for providing distributed web server authentication of a valid user 
requesting access to a webserver, said apparatus comprising: 

a plurality of computed systems, wherein each of said plurality of computer systems is 
coupled to at least one other of s^id plurality of computer systems, and wherein each of said plurality 
of computer systems includes: 
a processor unit; 

a communications uncoupled to said processor unit; 
a memory unit coupled tovsaid processor unit; and 

a computer program stored\n the memory unit, said computer program, which, when 
executed by the processor unit configures sakl computer system for: 

receiving a request to cOjinect the valid user to the computer system through 
the communications unit; 

creating a user password cdpkie using a shared secret key; 

transmitting the user password cookie to the user. 

25. A method of providing distributed webserver authentication of a user, said method 
comprising: 

receiving a request to connect a user to a web sender; 
determining if the user is a valid user; 
if the user is not valid, then, 

denying access to the user; 
if the user is valid, then, 

if a valid user password cookie exists, then, 

updating the user password cookie using a scared secret key; 
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if no valid u55r password cookie exists, then, 

generating the user password cookie using the shared secret key; 
^transmitting the user password cookie to the user; and 
connecting the web server to the user. 



26. The method of claim 25, wherein determining if the user is a valid user, comprises: 
reading a user credential cookie; 
requesting a usenidentification (ID) and password; 
receiving the user ID and password; and 
validating the user'sXdentity. 

27. The method of claim 25, wherein determining if the user is a valid user, comprises: 
obtaining the user password cookie; 
verifying that the user password cookie is valid; 
if the user password cookie is Valid, then, the user is valid; 
if the user password cookie is not valid, then, the user is not valid. 

28. The method of claim 25, wherein the web server is part of a common authentication 
ring having a shared secret key. 

29. The method of claim 26, whereinygenerating the user password cookie using the 
shared secret key, comprises: 

combining at least the user ID and password with a time stamp; and 
encrypting the combined at least user ID, password and time stamp using a shared secret key. 

30. The method of claim 25, further comprising: 

establishing a connection between the w£b server and a second user using a second 
user password cookie and the shared secret key. 
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